Nathan on Nostr: jack: what if the hardware key didn’t need to be near the same mobile key whose ...
jack (npub1sg6…f63m): what if the hardware key didn’t need to be near the same mobile key whose funds it was signing for but could be near another trusted person’s social key so it could be used as a second signer? (Using similar tech as the social recovery.)
I’m thinking two trusted friend/family members exchange hardware keys and, if I’m reading this right, neither can do anything to each other’s funds unilaterally. They can just co-sign for a payment, a change to the mobile limits, or a mobile key recovery.
The only area of concern I see is authorizing changes to trusted contacts (I assume that’s not unilateral, and it must first requested by the mobile key) and security settings (which I assume is the same).m
I’m thinking this reduces geographic risk and even attack risk. (If my hardware key sits across the country, good luck getting more than the set limit.)
Published at
2023-12-08 02:19:07Event JSON
{
"id": "21398e993d28691effe90ddce5cdf09bbf82b95783f62354c7fee71714814969",
"pubkey": "cec9808bbb00bc9c3eab4c2f23e9440a5ea775201b65a18462bc77080e39e336",
"created_at": 1702001947,
"kind": 1,
"tags": [
[
"imeta",
"url https://image.nostr.build/0a97c1ff39f3479d89bbbd39c75eeebf65c8766068d711a00f7b3849636a6180.jpg",
"blurhash eHRW0ZRj-=t7WB00ofj[j[Rj01j[Rijtt701R*IUay%M4nWBRjj[oe",
"dim 1284x2778"
],
[
"imeta",
"url https://image.nostr.build/47bc016ea476fa2f7b85de829384c3bd81cfe6b7b9c376ea0c01265dd8be6d78.jpg",
"blurhash ejQ9_=WBt8ofofaxj[a#fQay00j[WAfRazWFWBWBj[of0KfRaxaxay",
"dim 1284x2778"
],
[
"p",
"82341f882b6eabcd2ba7f1ef90aad961cf074af15b9ef44a09f9d2a8fbfbe6a2"
],
[
"r",
"https://image.nostr.build/0a97c1ff39f3479d89bbbd39c75eeebf65c8766068d711a00f7b3849636a6180.jpg"
],
[
"r",
"https://image.nostr.build/47bc016ea476fa2f7b85de829384c3bd81cfe6b7b9c376ea0c01265dd8be6d78.jpg"
]
],
"content": "nostr:npub1sg6plzptd64u62a878hep2kev88swjh3tw00gjsfl8f237lmu63q0uf63m: what if the hardware key didn’t need to be near the same mobile key whose funds it was signing for but could be near another trusted person’s social key so it could be used as a second signer? (Using similar tech as the social recovery.)\n\nI’m thinking two trusted friend/family members exchange hardware keys and, if I’m reading this right, neither can do anything to each other’s funds unilaterally. They can just co-sign for a payment, a change to the mobile limits, or a mobile key recovery.\n\nThe only area of concern I see is authorizing changes to trusted contacts (I assume that’s not unilateral, and it must first requested by the mobile key) and security settings (which I assume is the same).m\n\nI’m thinking this reduces geographic risk and even attack risk. (If my hardware key sits across the country, good luck getting more than the set limit.) https://image.nostr.build/0a97c1ff39f3479d89bbbd39c75eeebf65c8766068d711a00f7b3849636a6180.jpg https://image.nostr.build/47bc016ea476fa2f7b85de829384c3bd81cfe6b7b9c376ea0c01265dd8be6d78.jpg ",
"sig": "251deaffd0d18ff0ebb5e3c4d3f47ca5e806087a4b0df42793ce9a0300c736b04e3e29b61f5671f9dbd31fa2f9a3cff55e8e9ad15099acd9f65f69a0693212fd"
}